Follow these steps to download the latest stable version of Wazuh and get started.
The Wazuh server analyzes the data received from the agents. A single Wazuh server can analyze data from thousands of agents, and scale horizontally when configured in cluster mode.
The Wazuh agent detects threats and triggers automatic responses when necessary.
The agent has several capabilities, including log and event collection, active response, file and registry key monitoring, detection of rootkits or malware artifacts, among others.
Alerts generated by Wazuh are sent to Elastic Stack, where they are indexed and stored. The unique integration between Wazuh and Kibana provides a powerful user interface for data visualization and analysis.
Our core is open source. If you have questions about the installation process,
our contributors and developers will be happy to help you.